In re Appln. of BAHL et al. 
Appln. No. 09/607,195 

IN THE CLAIMS: 

Claim 1 (Currently Amended): A method for controlling access to a network by a 
wireless client, the method comprising: 

assigning a network address to the wireless client, wherein the network address 
has a lease period; 

sending the assigned network address to the wireless client prior to establishing a 
secure link ; 

sending the-an address of a wireless access point to the wireless client, wherein 
the wireless access point is adapted to provide access to the network for the wireless 
client; and; and 

if the wireless client fails to establish thea secure link with the wireless access 
point and request a renewal of the assigned address via the secure link within the lease 
period, invalidating the assigned network address, thereby preventing the wireless client 
from accessing the network. 

Claim 2 (Original): The method of claim 1 , wherein the assigned network address and 
the wireless access point address are sent to the wireless client in a DHCP offer packet. 

Claim 3 (Original): The method of claim 1 , wherein the secure link is an IPSEC tunnel. 

Claim 4 (Original): The method of claim 1, wherein the assigned network address is 
sent to the wireless client via the wireless access point. 

Claim 5 (Original): The method of claim 1 , wherein the address of the wireless access 
point that is sent to the wireless client comprises an IP address and a MAC address. 

Claim 6 (Original): A computer-readable medium having stored thereon computer- 
executable instructions for performing the method of claim 1 . 
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Claim 7 (Original): A computer-readable medium having stored thereon computer- 
executable instructions for performing the method of claim 2. 

Claim 8 (Original): A computer-readable medium having stored thereon computer- 
executable instructions for performing the method of claim 3. 

Claim 9 (Currently Amended): A method for controlling access to a network by a 
wireless client, the wireless client using aan assigned network address having a lease 
period to communicate with the network, the method comprising: 

engaging in a negotiation of a secure link with the wireless client; 

communicating with an address server of the network to determine whether the 
lease period of the leased network address has expired; aed ?and 

if the lease period is determined to be expired, terminating the negotiation, 
thereby preventing the wireless client from accessing the network. 

Claim 10 (Original): The method of claim 9, wherein the negotiation is a negotiation of 
an IPSEC tunnel. 

Claim 1 1 (Original): The method of claim 9, wherein the address server is a DHCP 
server. 

Claim 12 (Currently Amended): A method for controlling access to a network by a 
wireless client, the method comprising: 

receiving a request for a network address from the wireless client; 

attaching information to the request to indicate that the request originated from a 
wireless client; 

relaying the request to the address server; 

receiving an assignment of an address from the address server, the address having 
a lease time; 

relaying the assignment of the address to the wireless client; 

negotiating the establishment of a secure link with the wireless client; and?and 
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if the lease time expires before the secure link is established, denying the wireless 
client access to the network. 

Claim 13 (Currently Amended): The method of claim 12, further comprising: 

broadcasting an ARP packet to check whether there are any other clients having 

the same ff- assigned address of the wireless client; arekand 

if a response to the ARP packet is received, terminating the negotiation, thereby 

denying the wireless client access to the network. 

Claim 14 (Currently Amended): The method of claim 12, further comprising: in response 
to the negotiation, creating an ARP entry that maps the the4passigned address of the 
wireless client to the-aLMAC address of the wireless client. 

Claim 15 (Original): The method of claim 12, wherein the request is a DHCP discover 
packet, the method further comprising: 

inserting data into an optional field of the packet to indicate that the packet was 
received from a wireless client; and 

relaying the packet to the address server. 

Claim 16 (Currently Amended): The method of claim 12~_further comprising: 

receiving a renewal request packet having a request for a renewal of the lease time 

from the wireless client; 

if the secure link is successfully negotiated with the wireless client, inserting data 

into an optional field of the renewal request packet to indicate that the renewal request 

packet was received from a wireless client; and 

relaying the renewal request packet to the address server. 

Claim 1 7 (Original): A computer-readable medium having stored thereon computer- 
executable instructions for performing the method of claim 9. 
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Claim 1 8 (Original): A computer-readable medium having stored thereon computer- 
executable instructions for performing the method of claim 10. 

Claim 19 (Original): A computer-readable medium having stored thereon computer- 
executable instructions for performing the method of claim 12. 

Claim 20 (Original): A computer-readable medium having stored thereon computer- 
executable instructions for performing the method of claim 13. 

Claim 21 (Original): On a wireless client, a method for gaining access to a network, the 
method comprising: 

broadcasting a request for an address on the network; 

receiving an assignment of a leased address from the network, the leased address 
having a lease time; and 

negotiating a secure link with the network before the lease time expires. 

Claim 22 (Original): The method of claim 21, wherein the request for an address is 
broadcast as a DHCP discover packet. 

Claim 23 (Original): The method of claim 21, wherein the secure link is an IPSEC 
tunnel. 

Claim 24 (Currently Amended): The method of claim 2 1 , wherein the negotiating 
step further comprises: 

generating an ARP packet having the n e twork lease address giv e n by th e DHCP 
s e rv e r as it s d e stination addr e ss ; and, and 

in response to the ARP generation, initiating a negotiation of a -the secure link 
with the network. 
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Claim 25 (Original): The method of claim 21, wherein the leased address is received in 
a packet, wherein the packet additionally contains the network and MAC address of a 
wireless access point, wherein the secure link is negotiated with the wireless access point 
corresponding to the network address. 

Claim 26 (Original): A computer-readable medium having stored thereon computer- 
executable instructions for performing the method of claim 21. 

Claim 27 (Original): A computer-readable medium having stored thereon computer- 
executable instructions for performing the method of claim 22. 

Claim 28 (Original): A computer-readable medium having stored thereon computer- 
executable instructions for performing the method of claim 23. 

Claim 29 (Original): A computer-readable medium having stored thereon computer- 
executable instructions for performing the method of claim 24. 

Claim 30 (Original): A computer-readable medium having stored thereon computer- 
executable instructions for performing the method of claim 25. 

Claim 3 1 (New): The method according to claim 1 wherein the assigned network 
address having the lease period is sent to the wireless client prior to authentication of the 
wireless client. 

Claim 32 (New): The method according to claim 1 wherein the lease period is of a 
duration that is sufficient for the wireless client to establish a secure link with the 
wireless access point and send a renewal request of the assigned address via the secure 
link. 
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Claim 33 (New): The method according to claim 1 further comprising the step of 
extending the lease period of the assigned network address to a predefined duration if the 
wireless client establishes a secure link with the wireless access point and requests a 
renewal of the assigned address via the secure link. 
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